-
Notifications
You must be signed in to change notification settings - Fork 119
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
Merge branch 'main' of https://github.com/DeFiHackLabs/Solidity-Inten…
- Loading branch information
Showing
22 changed files
with
579 additions
and
0 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,22 @@ | ||
| --- | ||
| timezone: Asia/Shanghai | ||
| --- | ||
|
|
||
|
|
||
| # 0xfu | ||
|
|
||
| 1. 自我介绍 | ||
| Hi!大家好,我是0xfu,有5年 Golang 开发经验,熟悉 Solidity 和 React,加入共学营和大家一起学习! | ||
|
|
||
| 2. 你认为你会完成本次残酷学习吗? | ||
| 一定可以的!!! | ||
|
|
||
| ## Notes | ||
|
|
||
| <!-- Content_START --> | ||
|
|
||
| ### 2024.09.23 | ||
|
|
||
| ### | ||
|
|
||
| <!-- Content_END --> |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,20 @@ | ||
| --- | ||
| timezone: Asia/Shanghai | ||
| --- | ||
|
|
||
| # YourName | ||
|
|
||
| 1. 自我介绍: 路過區塊世界的中年大叔 | ||
| 2. 你认为你会完成本次残酷学习吗? 應該可以 | ||
|
|
||
| ## Notes | ||
|
|
||
| <!-- Content_START --> | ||
|
|
||
| ### 2024.09.23 | ||
|
|
||
| 學習內容: | ||
| - | ||
| ### | ||
|
|
||
| <!-- Content_END --> |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,92 @@ | ||
| --- | ||
| timezone: Asia/Shanghai | ||
| --- | ||
|
|
||
| > 请在上边的 timezone 添加你的当地时区,这会有助于你的打卡状态的自动化更新,如果没有添加,默认为北京时间 UTC+8 时区 | ||
| > 时区请参考以下列表,请移除 # 以后的内容 | ||
|
|
||
| timezone: Pacific/Honolulu # 夏威夷-阿留申标准时间 (UTC-10) | ||
|
|
||
| timezone: America/Anchorage # 阿拉斯加夏令时间 (UTC-8) | ||
|
|
||
| timezone: America/Los_Angeles # 太平洋夏令时间 (UTC-7) | ||
|
|
||
| timezone: America/Denver # 山地夏令时间 (UTC-6) | ||
|
|
||
| timezone: America/Chicago # 中部夏令时间 (UTC-5) | ||
|
|
||
| timezone: America/New_York # 东部夏令时间 (UTC-4) | ||
|
|
||
| timezone: America/Halifax # 大西洋夏令时间 (UTC-3) | ||
|
|
||
| timezone: America/St_Johns # 纽芬兰夏令时间 (UTC-2:30) | ||
|
|
||
| timezone: Asia/Dubai # 海湾标准时间 (UTC+4) | ||
|
|
||
| timezone: Asia/Kolkata # 印度标准时间 (UTC+5:30) | ||
|
|
||
| timezone: Asia/Dhaka # 孟加拉国标准时间 (UTC+6) | ||
|
|
||
| timezone: Asia/Bangkok # 中南半岛时间 (UTC+7) | ||
|
|
||
| timezone: Asia/Shanghai # 中国标准时间 (UTC+8) | ||
|
|
||
| timezone: Asia/Tokyo # 日本标准时间 (UTC+9) | ||
|
|
||
| timezone: Australia/Sydney # 澳大利亚东部标准时间 (UTC+10) | ||
|
|
||
| --- | ||
|
|
||
| # YourName | ||
|
|
||
| 1. 自我介绍 | ||
|
|
||
| 2. 你认为你会完成本次残酷学习吗? | ||
|
|
||
| ## Notes | ||
|
|
||
| <!-- Content_START --> | ||
|
|
||
| ### 2024.09.23 | ||
|
|
||
| 學習內容: | ||
| - A 系列的 Ethernaut CTF, 之前做了差不多了. POC: [ethernaut-foundry-solutions](https://github.com/SunWeb3Sec/ethernaut-foundry-solutions) | ||
| - A 系列的 QuillAudit CTF 題目的網站關掉了, 幫大家收集了[題目](./Writeup/SunSec/src/QuillCTF/), 不過還是有幾題沒找到. 有找到題目的人可以在發出來. | ||
| - A 系列的 DamnVulnerableDeFi 有持續更新, 題目也不錯. [Damn Vulnerable DeFi](https://github.com/theredguild/damn-vulnerable-defi/tree/v4.0.0). | ||
| - 使用 [Foundry](https://book.getfoundry.sh/) 在本地解題目, 可以參考下面 RoadClosed 為例子 | ||
| - ``forge test --match-teat testRoadClosedExploit -vvvv`` | ||
| #### [QuillAudit CTF - RoadClosed](./Writeup/SunSec/src/QuillCTF/RoadClosed.sol) | ||
| ``` | ||
| function addToWhitelist(address addr) public { | ||
| require(!isContract(addr), "Contracts are not allowed"); | ||
| whitelistedMinters[addr] = true; | ||
| } | ||
|
|
||
| function changeOwner(address addr) public { | ||
| require(whitelistedMinters[addr], "You are not whitelisted"); | ||
| require(msg.sender == addr, "address must be msg.sender"); | ||
| require(addr != address(0), "Zero address"); | ||
| owner = addr; | ||
| } | ||
|
|
||
| function pwn(address addr) external payable { | ||
| require(!isContract(msg.sender), "Contracts are not allowed"); | ||
| require(msg.sender == addr, "address must be msg.sender"); | ||
| require(msg.sender == owner, "Must be owner"); | ||
| hacked = true; | ||
| } | ||
|
|
||
| function pwn() external payable { | ||
| require(msg.sender == pwner); | ||
| hacked = true; | ||
| } | ||
| ``` | ||
| - 解決這個題目需要成為合約的 owner 和 hacked = true. | ||
| - On-chain: 可以透過 ``cast send`` 或是 forge script 來解. | ||
| - Local: 透過 forge test 通常是在local解題, 方便 debug. | ||
| - RoadClosed 為例子我寫了2個解題方式. testRoadClosedExploit 和 testRoadClosedContractExploit (因為題目有檢查msg.sender是不是合約, 所以可以透過constructor來繞過 isContract) | ||
| - [POC](./Writeup/SunSec/test/QuillCTF/RoadClosed.t.sol) | ||
|
|
||
| ### | ||
|
|
||
| <!-- Content_END --> |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,23 @@ | ||
| --- | ||
| timezone: Asia/Shanghai | ||
| --- | ||
|
|
||
| --- | ||
|
|
||
| # Arvid | ||
|
|
||
| 1. 自我介绍 | ||
| Arvid, 在上海台北各做過一個web3項目運營。 | ||
|
|
||
|
|
||
| 2. 你认为你会完成本次残酷学习吗? | ||
| 會,我有必死的決心。 | ||
| ## Notes | ||
|
|
||
| <!-- Content_START --> | ||
|
|
||
| ### 2024.09.23 | ||
|
|
||
| ### | ||
|
|
||
| <!-- Content_END --> |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,25 @@ | ||
| --- | ||
| timezone: Asia/Shanghai | ||
| --- | ||
|
|
||
| --- | ||
|
|
||
| # YourName | ||
|
|
||
| 1. 自我介绍 | ||
| 大家好我叫Chen Bing Wei,我以前只有學習過往佔前後都開發,從未接觸solidity與smart contract這類的東西,但今年因緣際會下修了一門叫分散式金融導論的課,助教教的非常好,讓我對這個領域充滿極大的興趣,或許未來可以做跨領域的結合,結合網路服務,金融科技,與機器學習等現在所學的知識,創造出能對人類有所貢獻的東西,因此想藉由這次機會挑戰自己,參加此次活動逼迫自己學習。 | ||
|
|
||
| 2. 你认为你会完成本次残酷学习吗? | ||
| 會 | ||
|
|
||
| ## Notes | ||
|
|
||
| <!-- Content_START --> | ||
|
|
||
| ### 2024.09.23 | ||
|
|
||
| 學習內容: | ||
|
|
||
| ### | ||
|
|
||
| <!-- Content_END --> |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,18 @@ | ||
| --- | ||
| timezone: Asia/Taipei | ||
| --- | ||
|
|
||
| --- | ||
|
|
||
| # Dida | ||
|
|
||
| 1. 前端工程師,轉職到 Web3 公司工作,想學習合約開發技術。 | ||
|
|
||
| 2. 會 | ||
|
|
||
| ## Notes | ||
|
|
||
| <!-- Content_START --> | ||
| ### 2024.09.23 | ||
|
|
||
| <!-- Content_END --> |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,20 @@ | ||
| --- | ||
| timezone: Asia/Shanghai | ||
| --- | ||
|
|
||
|
|
||
| # Gsus4 | ||
|
|
||
| 1. 自我介紹: Gsus4 is a nice chord. | ||
|
|
||
| 2. 你认为你会完成本次残酷学习吗? Yes. | ||
|
|
||
| ## Notes | ||
|
|
||
| <!-- Content_START --> | ||
|
|
||
| ### 2024.09.23 | ||
|
|
||
| ### | ||
|
|
||
| <!-- Content_END --> |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,21 @@ | ||
| --- | ||
| timezone: Asia/Shanghai | ||
| --- | ||
|
|
||
| --- | ||
|
|
||
| # JL | ||
|
|
||
| 1. 自我介绍 | ||
| 嗨~我是JL,第一次接觸程式,想接觸了解基礎知識和練習。 | ||
| 2. 你认为你会完成本次残酷学习吗? | ||
| 盡力而為。 | ||
| ## Notes | ||
|
|
||
| <!-- Content_START --> | ||
|
|
||
| ### 2024.09.23 | ||
|
|
||
| ### | ||
|
|
||
| <!-- Content_END --> |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,24 @@ | ||
| --- | ||
| timezone: Asia/Shanghai | ||
| --- | ||
|
|
||
|
|
||
| --- | ||
|
|
||
| # Judy | ||
|
|
||
| 1. 自我介绍 | ||
|
|
||
| 3年軟體工程師 區塊鏈開發學習中 | ||
|
|
||
| 2. 你认为你会完成本次残酷学习吗? | ||
|
|
||
| 會 | ||
|
|
||
| ## Notes | ||
|
|
||
| <!-- Content_START --> | ||
|
|
||
| ### 2024.09.23 | ||
|
|
||
| <!-- Content_END --> |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,23 @@ | ||
| --- | ||
| timezone: Asia/Shanghai | ||
| --- | ||
|
|
||
|
|
||
| --- | ||
|
|
||
| # Lisa | ||
|
|
||
| 1. 自我介绍 | ||
| 軟體工程師, Solidity 初學者 | ||
|
|
||
|
|
||
| 2. 你认为你会完成本次残酷学习吗? | ||
| 會努力。 | ||
|
|
||
| ## Notes | ||
|
|
||
| <!-- Content_START --> | ||
|
|
||
| ### 2024.09.23 | ||
|
|
||
| <!-- Content_END --> |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,11 @@ | ||
| --- | ||
| timezone: Asia/Shanghai | ||
| --- | ||
|
|
||
| # MrF | ||
|
|
||
| 1. 一个有拖延症的程序员 | ||
|
|
||
| 2. 可以的 | ||
|
|
||
|
|
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,20 @@ | ||
| --- | ||
| timezone: Asia/Shanghai | ||
| --- | ||
|
|
||
| # Aries | ||
|
|
||
| 1. 自我介绍 | ||
| Hi, 我是 Aries。30,现在在做 Web3 相关的开发工作。 | ||
| 剛好有這次的學習可以了解到共多以及交到更多的朋友! | ||
|
|
||
| 2. 你认为你会完成本次残酷学习吗? | ||
| 一定會完成。 | ||
|
|
||
| ## Notes | ||
|
|
||
| <!-- Content_START --> | ||
|
|
||
| ### 2024.09.23 | ||
|
|
||
| <!-- Content_END --> |
Oops, something went wrong.